You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@commons.apache.org by "Henri Biestro (Jira)" <ji...@apache.org> on 2023/02/14 18:11:00 UTC
[jira] [Resolved] (JEXL-223) Apache Commons JEXL Expression Execute Command Vulnerabilitity
[ https://issues.apache.org/jira/browse/JEXL-223?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Henri Biestro resolved JEXL-223.
--------------------------------
Fix Version/s: 3.3
Assignee: Henri Biestro
Resolution: Fixed
Fixed by permissions and new defaults.
> Apache Commons JEXL Expression Execute Command Vulnerabilitity
> --------------------------------------------------------------
>
> Key: JEXL-223
> URL: https://issues.apache.org/jira/browse/JEXL-223
> Project: Commons JEXL
> Issue Type: Bug
> Affects Versions: 3.1
> Reporter: cnbird
> Assignee: Henri Biestro
> Priority: Minor
> Fix For: 3.3
>
>
> 0x01 Summary
> Apache Commons JEXL Expression Execute Command Vulnerabilitity throught groovy.
> 0x02 POC
> POC Report to Apache Security Email Address security@apache.org.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)